Microsoft released hotfix for Windows Server 2008 R2 and Windows 7 fixing password change mechanism. MSA’s passwords are updated by default every 30 days (may be changed in registry at HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetLogon\Parameters). When password expires and is changed by computer, Kerberos and NTLM provider are not notified correctly so old password would be used which results in Authentication Failure.